CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,030 vulnerabilities with CWE-119
CVE-2007-4823
Google Picasa - Buffer Overflow
CVE-2007-4802
GlobalLink 2.7.0.8 - Remote Code Execution via glItemCom.dll or glitemflat.dll ActiveX Control
CVE-2007-4803
AtomixMP3 2.3 - Buffer Overflow via Long Strings in .pls File Fields
CVE-2007-4812
Safari < 3.0.4 - Buffer Overflow via document.location.hash
CVE-2007-4776
Microsoft Visual Basic 6.0 and Enterprise Edition 6.0 SP6 - Buffer Overflow via Long Reference Line in VBP File
CVE-2007-4790
Internet Explorer - Stack-Based Buffer Overflow via FoxDoCmd Function
CVE-2007-4791
IBM AIX 5.2 and 5.3 - Buffer Overflow in swcons Command
CVE-2007-4792
IBM AIX 5.3 - Buffer Overflow in ibstat
CVE-2007-4793
IBM AIX 5.2 and 5.3 - Buffer Overflow in xlplm
CVE-2007-4794
IBM AIX 5.2 and 5.3 - Local Privilege Escalation via fcstat Buffer Overflow
CVE-2007-4795
IBM AIX 5.2-5.3 - Buffer Overflow in mkpath via Long ODM Name
CVE-2007-4796
IBM AIX 5.2 and 5.3 - Local Privilege Escalation via uucp Buffer Overflow
CVE-2007-4797
IBM AIX 5.2-5.3 - Local Privilege Escalation via svprint Command Buffer Overflow
CVE-2007-4470
ER Mapper ECW JPEG 2000 Plug-in <8.1 - Buffer Overflow
CVE-2007-4758
Hitachi uCosminexus Application Server Enterprise - Buffer Overflow in Image-Processing APIs
CVE-2007-4759
Hitachi uCosminexus Application Server Enterprise - Denial of Service via Image-Processing APIs
CVE-2007-4472
Broderbund Expressit 3DGreetings - Buffer Overflow
CVE-2007-4743
MIT Kerberos 5 1.4-1.6.2 - Remote Buffer Overflow in svc_auth_gss.c
CVE-2007-4748
PPStream 2.0.1.3829 - Buffer Overflow via Logo Parameter
CVE-2007-3752
Apple iTunes < 7.4 - Remote Code Execution via MP4/AAC Cover Art
CVE-2007-4734
OTSTurntables 1.00 - Buffer Overflow via Long File Path in M3U File
CVE-2007-4735
Virtual DJ (VDJ) 5.0 - Buffer Overflow via Long File Path in M3U File
CVE-2007-0322
Intuit QuickBooks Online Edition ActiveX control - Stack-based Buffer Overflow
CVE-2007-4722
Move Media Player - Stack-Based Buffer Overflow via Play or Buzzer Method
CVE-2007-3999
MIT Kerberos 1.4-1.6.2 - Buffer Overflow
Details
Vulnerabilities 14,030
Exploit Likelihood High